This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/68/226927-d656-4b91-a990-0ce0496a997b/1/Otu0daQwTIRTQ_2U_ummuIAI44s.mft File: Otu0daQwTIRTQ_2U_ummuIAI44s.mft (raw, json) Hash identifier: s+ZRhE1NHp7DY94rUV1/PdGb4qXrhzEPeGUjSGPx2u0= Subject key identifier: 3C:7B:E1:A2:F2:1B:5C:A8:43:41:B5:B9:3D:8D:78:64:9B:BB:91:74 Authority key identifier: 3A:DB:B4:75:A4:30:4C:84:53:43:FD:94:FE:E9:A6:B8:80:08:E3:8B Certificate issuer: /CN=3adbb475a4304c845343fd94fee9a6b88008e38b Certificate serial: 019B5ABF1F4D32CAC19D4BD9F05022E451C6 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Otu0daQwTIRTQ_2U_ummuIAI44s.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/68/226927-d656-4b91-a990-0ce0496a997b/1/Otu0daQwTIRTQ_2U_ummuIAI44s.mft Manifest number: 015E Signing time: Fri 26 Dec 2025 13:00:33 +0000 Manifest this update: Fri 26 Dec 2025 13:00:33 +0000 Manifest next update: Sat 27 Dec 2025 13:00:33 +0000 Files and hashes: 1: DVUSZ4Wn0WYyKumEhUgsl46ROFc.roa (hash: XFlMm/wUVW8+vc0BV0GxtZswisL8d+xkAL7tq7JpJlQ=) 2: Otu0daQwTIRTQ_2U_ummuIAI44s.crl (hash: QdiYOjCquE7gaRnG40kr7YO62QG3A/rgHmkLhVS5MAk=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/68/226927-d656-4b91-a990-0ce0496a997b/1/Otu0daQwTIRTQ_2U_ummuIAI44s.crl rsync://rpki.ripe.net/repository/DEFAULT/68/226927-d656-4b91-a990-0ce0496a997b/1/Otu0daQwTIRTQ_2U_ummuIAI44s.mft rsync://rpki.ripe.net/repository/DEFAULT/Otu0daQwTIRTQ_2U_ummuIAI44s.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 27 Dec 2025 06:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:5a:bf:1f:4d:32:ca:c1:9d:4b:d9:f0:50:22:e4:51:c6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3adbb475a4304c845343fd94fee9a6b88008e38b Validity Not Before: Dec 26 13:00:33 2025 GMT Not After : Dec 27 13:00:33 2025 GMT Subject: CN=3c7be1a2f21b5ca84341b5b93d8d78649bbb9174 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:b8:ff:05:bd:f7:78:5a:75:38:f3:61:f1:a1: 6d:66:9b:8b:6b:38:36:fa:a9:55:84:f1:57:65:45: 53:c0:44:48:93:cd:5a:bf:a6:7d:38:83:0c:46:2c: 47:7b:88:0a:b5:2f:6b:17:f6:9b:b3:5b:6b:36:c8: 8e:67:f8:69:8d:83:90:47:36:0d:14:56:a8:96:5e: f3:86:37:1a:bf:7a:f0:16:23:1b:0e:bf:85:f1:31: 8f:70:8a:02:ab:cd:57:9d:db:ee:af:98:74:63:07: c5:c8:8d:05:17:0d:52:d7:43:cd:5a:af:d0:b8:70: 8f:cd:8f:cf:8c:57:52:06:1f:b9:d4:8c:a7:c9:10: ed:50:e1:7e:46:f7:d1:be:d9:9f:53:82:0b:3f:8f: 0c:c8:e4:62:af:3a:25:43:ca:2b:e4:fb:74:f5:f5: e3:5d:3d:e3:ba:fe:7b:7f:1b:1f:39:93:a4:72:5f: 92:ca:f6:4e:ea:b8:ae:86:87:a2:41:fd:59:8a:48: a9:c3:c5:69:87:81:1b:bf:00:60:3d:43:ab:08:e7: 31:eb:98:81:1e:13:d5:9c:fc:67:89:3f:f0:8c:95: 4f:3f:4e:27:14:46:12:9b:63:1f:bc:6a:b6:29:5b: 68:c8:49:39:4c:62:1e:75:18:18:70:51:bd:27:6d: 84:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3C:7B:E1:A2:F2:1B:5C:A8:43:41:B5:B9:3D:8D:78:64:9B:BB:91:74 X509v3 Authority Key Identifier: keyid:3A:DB:B4:75:A4:30:4C:84:53:43:FD:94:FE:E9:A6:B8:80:08:E3:8B X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Otu0daQwTIRTQ_2U_ummuIAI44s.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/68/226927-d656-4b91-a990-0ce0496a997b/1/Otu0daQwTIRTQ_2U_ummuIAI44s.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/68/226927-d656-4b91-a990-0ce0496a997b/1/Otu0daQwTIRTQ_2U_ummuIAI44s.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption ec:1f:d5:8f:20:8c:dd:df:b4:0b:e7:22:16:02:f1:e3:b9:9c: 0f:10:33:a6:82:02:aa:e2:d9:9e:bb:e4:b7:ff:64:95:e5:36: 7a:cc:0c:5a:dc:1a:74:42:e9:89:d5:17:e5:a3:96:a3:5d:1f: cd:f7:76:88:0b:e4:c3:d2:f7:cc:01:91:88:17:e5:13:02:b5: 02:94:c4:c2:fa:c8:39:b8:4d:05:8d:a7:92:cd:a0:ea:63:e6: 8c:d4:1e:96:30:cc:ce:5e:de:69:c1:91:ef:33:fa:16:c5:45: c6:a1:dc:c1:85:87:92:96:ee:21:2a:ef:02:fd:3e:7f:2d:2a: 9c:ad:dd:04:d2:9e:eb:5b:56:a3:f9:79:5e:bf:3f:2b:97:f4: e1:ed:69:6f:00:61:05:39:03:25:96:41:0e:0a:50:b1:a0:39: 4f:0c:4d:70:52:04:c6:fc:99:96:ee:10:c5:e1:27:b7:ea:2c: 6c:9e:cc:a5:5d:91:ac:df:86:33:da:a3:e5:3d:20:5d:62:5b: 3d:23:63:4a:74:31:7f:d4:48:a0:24:43:70:58:c0:46:1d:7f: ca:c5:30:f6:cc:81:dd:cb:d8:5d:7a:22:46:4f:07:8b:54:b0: b4:fd:df:44:77:cc:b1:6a:8f:5f:65:99:d2:ea:6f:79:27:45: 1c:ca:63:3f -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtavx9NMsrBnUvZ8FAi5FHGMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDNhZGJiNDc1YTQzMDRjODQ1MzQzZmQ5NGZlZTlhNmI4ODAw OGUzOGIwHhcNMjUxMjI2MTMwMDMzWhcNMjUxMjI3MTMwMDMzWjAzMTEwLwYDVQQD EygzYzdiZTFhMmYyMWI1Y2E4NDM0MWI1YjkzZDhkNzg2NDliYmI5MTc0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA37j/Bb33eFp1OPNh8aFtZpuLazg2 +qlVhPFXZUVTwERIk81av6Z9OIMMRixHe4gKtS9rF/abs1trNsiOZ/hpjYOQRzYN FFaoll7zhjcav3rwFiMbDr+F8TGPcIoCq81Xndvur5h0YwfFyI0FFw1S10PNWq/Q uHCPzY/PjFdSBh+51IynyRDtUOF+RvfRvtmfU4ILP48MyORirzolQ8or5Pt09fXj XT3juv57fxsfOZOkcl+SyvZO6riuhoeiQf1Zikipw8Vph4EbvwBgPUOrCOcx65iB HhPVnPxniT/wjJVPP04nFEYSm2MfvGq2KVtoyEk5TGIedRgYcFG9J22EjwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFDx74aLyG1yoQ0G1uT2NeGSbu5F0MB8GA1UdIwQY MBaAFDrbtHWkMEyEU0P9lP7ppriACOOLMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvT3R1MGRhUXdUSVJUUV8yVV91bW11SUFJNDRzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82OC8yMjY5MjctZDY1Ni00YjkxLWE5OTAt MGNlMDQ5NmE5OTdiLzEvT3R1MGRhUXdUSVJUUV8yVV91bW11SUFJNDRzLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82OC8yMjY5MjctZDY1Ni00YjkxLWE5OTAtMGNlMDQ5NmE5OTdi LzEvT3R1MGRhUXdUSVJUUV8yVV91bW11SUFJNDRzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEA7B/VjyCM 3d+0C+ciFgLx47mcDxAzpoICquLZnrvkt/9kleU2eswMWtwadELpidUX5aOWo10f zfd2iAvkw9L3zAGRiBflEwK1ApTEwvrIObhNBY2nks2g6mPmjNQeljDMzl7eacGR 7zP6FsVFxqHcwYWHkpbuISrvAv0+fy0qnK3dBNKe61tWo/l5Xr8/K5f04e1pbwBh BTkDJZZBDgpQsaA5TwxNcFIExvyZlu4QxeEnt+osbJ7MpV2RrN+GM9qj5T0gXWJb PSNjSnQxf9RIoCRDcFjARh1/ysUw9syB3cvYXXoiRk8Hi1SwtP3fRHfMsWqPX2WZ 0upveSdFHMpjPw== -----END CERTIFICATE-----Generated at Fri Dec 26 15:46:18 2025 by rpki-client